Lima Joins CNCF Incubation: Secure Linux VMs for Cloud Native and AI Workloads

Cloud Native

Lima, the project providing secure Linux virtual machines for cloud native and AI workloads, has been accepted as a CNCF incubating project. Discover its capabilities, use cases, and key features.

The Cloud Native Computing Foundation (CNCF) Technical Oversight Committee (TOC) has officially voted to accept Lima as a CNCF incubating project. Lima provides secure, isolated environments crucial for running modern cloud native and AI workloads.

What is Lima? Where Does It Fit in the Cloud Native Landscape?

Lima, an acronym for "Linux Machines," delivers Linux virtual machines specifically optimized for executing containers within local development environments. It boasts robust built-in integration with several popular container engines, including:

  • containerd [CNCF Graduated] (default)
  • Docker
  • Podman [CNCF Sandbox]
  • Kubernetes [CNCF Graduated]
  • k3s [CNCF Sandbox]
  • k0s [CNCF Sandbox]
  • Usernetes
  • RKE2
  • Apptainer

Diverse Use Cases

Beyond its core containerization capabilities, Lima has proven valuable for a range of other use cases. A particularly innovative application is running an AI coding agent inside a dedicated VM. This setup rigorously isolates the agent from direct access to host files and commands. This isolation ensures that even if an AI agent were to be compromised by malicious instructions (e.g., deceptive package installations from the internet), any potential damage would be strictly confined within the VM or limited only to files explicitly mounted from the host. The Lima website showcases several examples of hardening AI agents, including:

  • Aider
  • Claude Code
  • Codex
  • Gemini
  • GitHub Copilot CLI
  • GitHub Copilot in Visual Studio Code

Lima's Origins and Evolution

The Lima project was initiated in May 2021 by Akihiro Suda, a respected maintainer of containerd and numerous other projects within the container ecosystem. Initially conceived as a "containerd machine," its primary goal was to demonstrate and promote containerd, alongside tools like nerdctl (contaiNERD CTL), to Mac users. The project's scope later expanded to support various other container engines and non-container applications. Lima also extends its support beyond macOS, accommodating Linux, NetBSD, and Windows hosts.

Lima officially joined the Cloud Native Computing Foundation in September 2022 as a Sandbox project. Since then, it has experienced continuous growth in contributions and adoptions, notably with its GitHub stars doubling.

Prominent adopters include:

  • Colima
  • Rancher Desktop
  • AWS Finch
  • Podman Desktop [CNCF Sandbox] (as an extension)

Further user stories can be found in GitHub Discussions.

Maintainer Perspectives

"I'm glad that Lima has evolved from a simple demo tool to becoming a foundational component of the modern container ecosystem, under the guidance of CNCF. I hope that Lima will see more adoptions, especially in the context of sandboxing AI coding agents."

Akihiro Suda, Founding Maintainer of Lima, NTT

"I'm thrilled to see developers already experimenting with Lima 2.0's external driver API, trying Apple Containers, libkrun, and Proxmox. The ability to extend Lima without touching the core makes me excited to see how the community explores and expands local virtualization."

Jan Dubois, Maintainer of Lima, SUSE

Insights from the TOC

"As AI and cloud native converge, Lima plays an important role in providing secure, isolated environments for testing and development. Its lightweight VM approach supports workloads that need extra protection or reproducibility without sacrificing speed or usability. The project's inclusion in CNCF incubation reflects both its technical maturity and its growing impact across developer and AI communities."

Ricardo Rocha, CNCF TOC Sponsor

"Lima captures the practical, community-driven innovation that defines cloud native. By making it easy to run Linux VMs with container-like workflows, Lima bridges local development and production environments with security and consistency. I'm excited to see how Lima further continues to develop and expand its impact."

Chad Beaudin, CNCF TOC Sponsor

Main Components

Lima's architecture is built upon several key components:

  • limactl CLI
  • containerd: The default container engine, featuring optional enablers:
    • gomodjail: For enhanced supply chain security
    • bypass4netns: For accelerating rootless networking
    • eStargz: For accelerating container start-up time
  • Ubuntu: The default guest OS
  • Templates
  • Alternative container engines: (Docker, Podman, etc.)
  • Alternative guest OS: (AlmaLinux, Debian, Fedora, openSUSE, etc.)
  • VM drivers:
    • Virtualization.framework (system component of macOS)
    • QEMU
    • WSL2
  • Filesystem drivers:
    • virtiofs (provided by Virtualization.framework)
    • 9p (provided by QEMU)
    • reverse-sshfs
  • Network drivers:
    • User-mode networking based on gVisor
    • vzNAT (provided by Virtualization.framework), for direct IP access and faster throughput
    • socket_vmnet for advanced networking modes
  • Port forwarders:
    • eBPF port scanner
    • Kubernetes port scanner
    • SSH transport
    • gRPC transport

Notable Milestones

Lima has achieved significant milestones, demonstrating its robust community and development:

  • Over 18,200 GitHub Stars
  • More than 2,600 Pull Requests
  • Over 1,200 Issues
  • 78 Releases
  • 160 Contributors
  • 8 Maintainers from independent organizations and individuals

Latest Release: v2.0

The project recently celebrated its v2.0 release, which introduces several pivotal features:

  • Plug-in subsystem for VM drivers: Enabling the implementation of third-party VM drivers without modifying the upstream core.
  • Support for GPU acceleration: Leveraging the krunkit VM driver.
  • Model Context Protocol (MCP) server: Designed to enhance the security of AI coding agents operating outside a VM.
  • Numerous CLI improvements.

Learn more about the project milestones on GitHub.

As a CNCF-hosted project, Lima benefits from being part of a neutral foundation that aligns with its technical interests, as well as the broader Linux Foundation. This provides essential governance, marketing support, and community outreach. Lima now joins a prestigious group of incubating technologies, including Backstage, Buildpacks, cert-manager, Chaos Mesh, CloudEvents, Container Network Interface (CNI), Contour, Cortex, CubeFS, Dapr, Dragonfly, Emissary-Ingress, Falco, gRPC, in-toto, Keptn, Keycloak, Knative, KubeEdge, Kubeflow, KubeVela, KubeVirt, Kyverno, Litmus, Longhorn, NATS, Notary, OpenFeature, OpenKruise, OpenMetrics, OpenTelemetry, Operator Framework, Thanos, and Volcano. For detailed information on maturity requirements for each level, please refer to the CNCF Graduation Criteria.